Google Cloud运行中的IP过滤 [英] IP filtering on Google Cloud run
问题描述
我有一个要使用Google Cloud run部署的Angular Web应用程序.但是,我需要仅在预定义的IP地址列表中可见该应用程序.
I have an Angular web app i want to deploy using Google Cloud run. However I need the app be visible only from a list of predefined IP addresses.
我可以在Google云平台防火墙下简单地设置ip允许/拒绝规则,还是需要其他方法?
Can I simply set the ip allow/deny rules under Google cloud platform firewall or do I need another method?
预先感谢
Nico
推荐答案
不信任网络
顺便说一句,Google在开发中的头等大事不依赖IP来源,而是依赖令牌进行身份和授权.
By the way, the Google top priority in development don't rely on IP origin but on token for identity and authorization.
对于Cloud Run,您具有充当代理的Google前端(GFE),请检查身份验证(如果私有云运行),请确保SSL证书已部署且有效,...无法通过IP过滤对其进行自定义
For Cloud Run, you have Google Front End (GFE) which act as proxy, check the authentication (in case of private Cloud Run), ensure that the SSL certificate is deployed and valid,... It's not possible to customize it with IP filtering
即使将Endpoint(ESP)网关插入Cloud Run服务之前,也无法在所有
Even if you plug a Endpoint (ESP) gateway in front of your Cloud Run service, it is not possible to filter on IP among all the security method. The easiest for your should be to use API key, I wrote an article on this
未来,Cloud Run将与Loadbalancer兼容.不确定是否足以过滤IP.
In the futur, Cloud Run will be compliant with Loadbalancer. Not sure that will be enough for filtering IP.
所有这些都告诉您,如果要在Cloud Run(和Cloud Function)的顶部实施IP过滤,则必须自己实施.
All of this for telling you that, if you want to implement IP filtering in top of Cloud Run (and Cloud Function), you have to implement it by yourself.
这篇关于Google Cloud运行中的IP过滤的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
